An Operating Systems Vade Mecum

More documents

Recommendations

Info

168 Transput Chapter 54 DATA MODIFICATIONData sent to a device need not be an identical copy of the data found in main store. Threedistinct kinds of modification may be performed, each for a different reason.4.1 Data compactionWhen a great deal of information is to be sent across an expensive transmission line,modifying the data to occupy fewer bits is worthwhile. Similarly, if data must be savedfor a long time on an expensive medium, it will be cheaper if the data can be crammedinto fewer bits.There are often obvious ways to save space. For example, a file that represents acomputer program may have many space characters. Instead of sending all the spaces,each blank region can be encoded by a count of how many spaces there are. This methodis an example of run-length encoding. Television pictures are large arrays of intensityvalues. Instead of sending a 6-bit intensity value for each element of the array, a 3-bitdifference between that element and the previous one often suffices. Some escapemechanism can be used when the difference cannot be represented in 3 bits. This methodis an example of difference encoding. More sophisticated coding methods exist, such asHuffman codes, which assign often-used characters a short code, and less used ones alonger code.4.2 Data encryption<strong>An</strong>other sort of transformation can be applied to data to hide their contents. Actually,secrecy (can anyone else read the data?) is only one part of a larger set of security considerationsthat includes authentication (who generated the data?) and protection (cananybody modify the data?). The transformation used for these purposes is called encryption.Data before the transformation is applied are in cleartext form. The encrypteddata are in ciphertext form. A particular encryption algorithm may have an associateddecryption algorithm that is used to transform ciphertext back into the original cleartext.You might think that an encryption algorithm that has no decryption would be useless.Actually, such trap-door encryption algorithms have an important use in authentication.Many operating systems identify each user by a user name and a password,which the user is expected to keep secret. <strong>An</strong>y person who knows that name and passwordhas all the privileges of that user. Most operating systems store the passwords in afile; anyone with access to that file can therefore learn everyone’s password. This situationis very vulnerable because any loss of security endangers everyone’s security, andsecurity depends on powers entrusted to humans.A far better approach (taken by Unix) is to encrypt each password with a trap-doorfunction and to store the encrypted passwords in a publicly accessible file. The
Data modification 169encryption method is publicly available. Now any program that wishes to authenticate auser may ask for a password, encrypt it, and compare the result to the value in the file. Ifthe values match, the password is correct. In particular, the logon program, which greetsthe user at the beginning of the interactive computer session, can tell if the user knowsthe correct password. However, the huge number of possible passwords and the fact thatno decryption method exists make it infeasible for an intruder to guess the password,because every conceivable password would have to be encrypted and compared with thefile. This scheme assumes, of course, that people choose fairly long and fairly irregularpasswords. Some installations of Unix refuse to allow a password that is too short or tooclosely related to an English word. VMS can be set to insist that specific users changetheir password every so often.Most applications of encryption, however, require that the ciphertext be convertibleback into cleartext. Unfortunately, all current encryption methods have problems.The ‘‘one-time pad’’ is the only provably secure method known at this time. It derivesthe ciphertext by a byte-wise exclusive-or operation between the cleartext and a ‘‘key’’whose length must be at least as long as the message. The decryption method uses thesame key and the same algorithm. The key must never be used again, or it becomeseasier and easier to guess. Since both the originator and the recipient of the ciphertextmust agree on the key, it must be transmitted as well, a procedure that is just as difficultas the original problem of secure transmission. Computer-generated pseudo-randomnumbers create keys that are too easy to guess, by the way.A currently popular encryption method is the Data Encryption Standard (DES).The DES method was developed by the National Bureau of Standards with several goalsin mind. Many commercial applications are currently using DES. The algorithm (eitherencryption or decryption) can be performed efficiently with a special-purpose chip, butfar less efficiently with a program. Since the key is 56 bits long, there is plenty of roomfor picking unique keys. Unfortunately, some keys turn out to be weak; if a weak key isused to encrypt, the ciphertext can be analyzed quite easily to discover the cleartext. It isnot certain how many keys are weak or ‘‘semi-weak.’’ There is some suspicion that 56bits is insufficient to prevent a successful attack that uses massive amounts of computertime. It is possible that a longer key (perhaps 100 bits) would be sufficient.The one-time pad and DES are considered ‘‘conventional;’’ they share the propertythat the same key is used for encryption and decryption. A non-conventionalapproach called ‘‘public-key cryptography’’ uses different keys for the two transformations.One public-key method, called RSA after its inventors (Rivest, Shamir, and Adelman),has resisted attacks so far, although it has not been proved to be computationallysecure.The RSA method itself is too complex to discuss here. The general properties ofpublic-key methods are elegant, however, so we will outline them. Every user U has apair of keys, one for encryption, E U , and one for decryption, D U . It is impossible toguess E U from D U or vice versa. Ciphertext encrypted with E U is decrypted by D U .Everyone’s E key is considered public; it is saved in a public place where anyone mayaccess it. Let’s say A and B are two parties (programs, computers, or people) that wantto send secure messages to each other. A encrypts messages for B using B’s public keyE B . B can decrypt them using its private key D B , but no one else can decrypt thembecause no one else knows D B . Similarly, B encrypts messages for A using A’s publickey E A . These messages are secret. However, B cannot be sure that A has sent the messagesbecause anyone could have used E B , B’s public key.
Page 5 and 6:
ContentsvWhich page should be swapp
Page 7 and 8:
Contentsvii1.3 Interacting with pro
Page 9:
ContentsixBalance is a registered t
Page 12 and 13:
12 Prefaceareas of current activity
Page 14 and 15:
2 Introduction Chapter 1We will giv
Page 16 and 17:
4 Introduction Chapter 1Another way
Page 18 and 19:
6 Introduction Chapter 1executing j
Page 20 and 21:
8 Introduction Chapter 1The running
Page 22 and 23:
10 Introduction Chapter 1waiting fo
Page 24 and 25:
12 Introduction Chapter 1During log
Page 26 and 27:
14 Introduction Chapter 1transput d
Page 28 and 29:
16 Introduction Chapter 1processesA
Page 30 and 31:
18 Introduction Chapter 1Various ev
Page 32 and 33:
20 Introduction Chapter 1decomposit
Page 34 and 35:
22 Introduction Chapter 1created fo
Page 36 and 37:
24 Introduction Chapter 1(The trap
Page 38 and 39:
26 Introduction Chapter 111. How ca
Page 40 and 41:
28 Time Management Chapter 2runread
Page 42 and 43:
30 Time Management Chapter 2the use
Page 44 and 45:
32 Time Management Chapter 2Unfortu
Page 46 and 47:
34 Time Management Chapter 2109FBRR
Page 48 and 49:
36 Time Management Chapter 2How wel
Page 50 and 51:
38 Time Management Chapter 23C81111
Page 52 and 53:
40 Time Management Chapter 2Instead
Page 54 and 55:
42 Time Management Chapter 2middle-
Page 56 and 57:
44 Time Management Chapter 23C81B10
Page 58 and 59:
46 Time Management Chapter 2Process
Page 60 and 61:
48 Time Management Chapter 23.1 Cla
Page 62 and 63:
50 Time Management Chapter 2tapepri
Page 64 and 65:
52 Time Management Chapter 23.4 Cou
Page 66 and 67:
54 Time Management Chapter 25 EXERC
Page 68 and 69:
56 Time Management Chapter 2startin
Page 70 and 71:
58 Space Management Chapter 3Proces
Page 72 and 73:
60 Space Management Chapter 38 bits
Page 74 and 75:
62 Space Management Chapter 3called
Page 76 and 77:
64 Space Management Chapter 3Whethe
Page 78 and 79:
66 Space Management Chapter 320K33K
Page 80 and 81:
68 Space Management Chapter 3bytes
Page 82 and 83:
70 Space Management Chapter 3would
Page 84 and 85:
72 Space Management Chapter 3transl
Page 86 and 87:
74 Space Management Chapter 30 13K0
Page 88 and 89:
76 Space Management Chapter 3When i
Page 90 and 91:
78 Space Management Chapter 3instru
Page 92 and 93:
80 Space Management Chapter 3virtua
Page 94 and 95:
82 Space Management Chapter 3segmen
Page 96 and 97:
84 Space Management Chapter 3unusab
Page 98 and 99:
86 Space Management Chapter 31 cons
Page 100 and 101:
88 Space Management Chapter 3first
Page 102 and 103:
90 Space Management Chapter 3Page t
Page 104 and 105:
92 Space Management Chapter 3the pa
Page 106 and 107:
descriptor base registervirtual add
Page 108 and 109:
96 Space Management Chapter 3This t
Page 110 and 111:
98 Space Management Chapter 3Virtua
Page 112 and 113:
100 Space Management Chapter 3The c
Page 114 and 115:
102 Space Management Chapter 3entir
Page 116 and 117:
104 Space Management Chapter 3To il
Page 118 and 119:
106 Space Management Chapter 33000R
Page 120 and 121:
108 Space Management Chapter 310000
Page 122 and 123:
110 Space Management Chapter 37.6 S
Page 124 and 125:
112 Space Management Chapter 3chang
Page 126 and 127:
114 Space Management Chapter 3When
Page 128 and 129:
116 Space Management Chapter 3Anoth
Page 130 and 131: 118 Space Management Chapter 3lengt
Page 132 and 133: 120 Space Management Chapter 319. S
Page 134 and 135: 122 Resource Deadlock Chapter 4file
Page 136 and 137: 124 Resource Deadlock Chapter 42 DE
Page 138 and 139: 126 Resource Deadlock Chapter 4Atap
Page 140 and 141: 128 Resource Deadlock Chapter 4dead
Page 142 and 143: 130 Resource Deadlock Chapter 41253
Page 144 and 145: 132 Resource Deadlock Chapter 41253
Page 146 and 147: 134 Resource Deadlock Chapter 4to b
Page 148 and 149: 136 Resource Deadlock Chapter 4the
Page 150 and 151: 138 Resource Deadlock Chapter 4most
Page 152 and 153: 140 Resource Deadlock Chapter 4and
Page 154 and 155: 142 Resource Deadlock Chapter 4We m
Page 156 and 157: 144 Resource Deadlock Chapter 4by d
Page 158 and 159: 146 Resource Deadlock Chapter 4(d)
Page 160 and 161: 148 Transput Chapter 5comes from sp
Page 162 and 163: 150 Transput Chapter 5be made. By t
Page 164 and 165: 152 Transput Chapter 5Many operatin
Page 166 and 167: 154 Transput Chapter 5one bit and t
Page 168 and 169: 156 Transput Chapter 52 THE DEVICE
Page 170 and 171: 158 Transput Chapter 5processeskern
Page 172 and 173: 160 Transput Chapter 5language. The
Page 174 and 175: 162 Transput Chapter 5page onto bac
Page 176 and 177: 164 Transput Chapter 5error. After
Page 178 and 179: 166 Transput Chapter 5on the way ou
Page 182 and 183: 170 Transput Chapter 5If we want B
Page 184 and 185: 172 Transput Chapter 5within a reas
Page 186 and 187: 174 Transput Chapter 5transfer, in
Page 188 and 189: 176 Transput Chapter 5Input buffers
Page 190 and 191: 178 Transput Chapter 5The kernel ca
Page 192 and 193: 180 Transput Chapter 5usersbuffer p
Page 194 and 195: 182 Transput Chapter 5Security: Enc
Page 196 and 197: 184 Transput Chapter 513. The text
Page 198 and 199: 186 File Structures Chapter 6distin
Page 200 and 201: 188 File Structures Chapter 6A flat
Page 202 and 203: 190 File Structures Chapter 6Master
Page 204 and 205: 192 File Structures Chapter 6Figure
Page 206 and 207: 194 File Structures Chapter 6/ (the
Page 208 and 209: 196 File Structures Chapter 62.1 A
Page 210 and 211: 198 File Structures Chapter 6Whenev
Page 212 and 213: 200 File Structures Chapter 6file,
Page 214 and 215: 202 File Structures Chapter 6One si
Page 216 and 217: 204 File Structures Chapter 6Access
Page 218 and 219: 206 File Structures Chapter 6early
Page 220 and 221: 208 File Structures Chapter 6a stud
Page 222 and 223: 210 File Structures Chapter 6file v
Page 224 and 225: 212 File Structures Chapter 6Synchr
Page 226 and 227: 214 File Structures Chapter 6comple
Page 228 and 229: 216 File Structures Chapter 6When a
Page 230 and 231:
218 File Structures Chapter 6descri
Page 232 and 233:
220 File Structures Chapter 6If ext
Page 234 and 235:
222 File Structures Chapter 6Figure
Page 236 and 237:
224 File Structures Chapter 6159234
Page 238 and 239:
226 File Structures Chapter 6machin
Page 240 and 241:
228 File Structures Chapter 6disk i
Page 242 and 243:
230 File Structures Chapter 610 typ
Page 244 and 245:
232 File Structures Chapter 61. Imp
Page 246 and 247:
chapter 7THE USER INTERFACEWe have
Page 248 and 249:
236 The User Interface Chapter 7ins
Page 250 and 251:
238 The User Interface Chapter 7Use
Page 252 and 253:
240 The User Interface Chapter 7cop
Page 254 and 255:
242 The User Interface Chapter 7Pro
Page 256 and 257:
244 The User Interface Chapter 7int
Page 258 and 259:
246 The User Interface Chapter 7sim
Page 260 and 261:
248 The User Interface Chapter 7acr
Page 262 and 263:
250 The User Interface Chapter 7ref
Page 264 and 265:
252 The User Interface Chapter 7The
Page 266 and 267:
254 The User Interface Chapter 7pro
Page 268 and 269:
chapter 8CONCURRENCYAs operating sy
Page 270 and 271:
258 Concurrency Chapter 8process Ap
Page 272 and 273:
260 Concurrency Chapter 8ABCDEFGHFi
Page 274 and 275:
262 Concurrency Chapter 82.2 Busy w
Page 276 and 277:
264 Concurrency Chapter 8to arbitra
Page 278 and 279:
266 Concurrency Chapter 8The Intere
Page 280 and 281:
268 Concurrency Chapter 8It is libe
Page 282 and 283:
270 Concurrency Chapter 8share the
Page 284 and 285:
272 Concurrency Chapter 8Variables
Page 286 and 287:
274 Concurrency Chapter 8scope (a b
Page 288 and 289:
276 Concurrency Chapter 816 guard p
Page 290 and 291:
278 Concurrency Chapter 8These rule
Page 292 and 293:
280 Concurrency Chapter 8time, a re
Page 294 and 295:
282 Concurrency Chapter 8 Read(E) r
Page 296 and 297:
284 Concurrency Chapter 81 type2 Se
Page 298 and 299:
286 Concurrency Chapter 8To represe
Page 300 and 301:
288 Concurrency Chapter 822 procedu
Page 302 and 303:
290 Concurrency Chapter 8The parame
Page 304 and 305:
292 Concurrency Chapter 86. Prove t
Page 306 and 307:
chapter 9CO-OPERATING PROCESSESIn C
Page 308 and 309:
296 Co-operating Processes Chapter
Page 310 and 311:
Page 312 and 313:
Page 314 and 315:
Page 316 and 317:
Page 318 and 319:
Page 320 and 321:
Page 322 and 323:
Page 324 and 325:
Page 326 and 327:
Page 328 and 329:
Page 330 and 331:
Page 332 and 333:
Page 334 and 335:
REFERENCESJ. E. ALLCHIN, M.S.MCKEND
Page 336 and 337:
324 ReferencesR. FINKEL, M.SOLOMON,
Page 338 and 339:
326 ReferencesG. L. PETERSON, ‘
Page 340 and 341:
GLOSSARYMany standard English words
Page 342 and 343:
330 GlossaryBacking store. The larg
Page 344 and 345:
332 GlossaryCiphertext. The result
Page 346 and 347:
334 GlossaryDatabase. A collection
Page 348 and 349:
336 GlossaryEncryption. A data tran
Page 350 and 351:
338 GlossaryHint. Usually but not n
Page 352 and 353:
340 GlossaryLocal. (1) A local page
Page 354 and 355:
342 GlossaryOpen shop. A style for
Page 356 and 357:
344 GlossaryProcess. The execution
Page 358 and 359:
346 GlossaryRotational latency. The
Page 360 and 361:
348 GlossaryStarvation. The situati
Page 362 and 363:
350 GlossaryTrap-door encryption. A
show all

An Operating Systems Vade Mecum

Create successful ePaper yourself

Delete template?

Save as template?